swn177

Security Weekly News Episode #177 – January 11, 2022

Subscribe to all of our shows and mailing list by visiting: https://securityweekly.com/subscribe

1. CISA, QNAP, KCodes, Supply Chain Hijinx, Chuds, & CES 2022 – 02:00 PM-02:30 PM

Description

This week in the Security Weekly News: Toilet snakes, CES, CISA, Supply Chain Library Hijinx, QNAP, colors and fakers, and the first episode of 2022 for the Security Weekly News! All this and the returning Expert Commentary of Jason Wood!

Hosts

DougWhite

Doug White

@dougwhitephd

Professor at Roger Williams University

  1. Cyber-Spike: Orgs Suffer 925 Attacks per Week, an All-Time High
  2. QNAP: Get NAS Devices Off the Internet Now
  3. Millions of Routers Exposed to RCE by USB Kernel Bug
  4. URL Parsing-Library Bugs Allow DoS, RCE, Spoofing & More
  5. Dev corrupts NPM libs ‘colors’ and ‘faker’ breaking thousands of apps
  6. No Significant Intrusions Related to Log4j Flaw Yet, CISA Says
  7. How Often Do Snakes, Rats, and Spiders Really Crawl Up Your Toilet Pipes? (And How to Stop Them)
  8. The weirdest and most interesting tech at CES 2022
JasonWood

Jason Wood

@Jason_Wood

Founder; Primary Consultant at Paladin Security

  1. The blame game: EU criticized for ‘fragmented and slow’ approach to cyber-attack attribution